EFF: the NSA has endangered us all by sabotaging security

Follow Us

The Electronic Frontier Foundation's Cindy Cohn and Trevor Timm look at the NSA's Bullrun program, through which the US and UK governments have spent $250M/year sabotaging computer security. Cindy is the lawyer who argued the Bernstein case, which legalized civilian access to strong cryptography -- in other words, it's her work that gave us all the ability to communicate securely online. And so she's very well-situated to comment on what it means to learn that the NSA has deliberately weakened the security that ensures the integrity of the banking system, aviation control, embedded systems in everything from cars to implanted defibrillators, as well as network infrastructure, desktop computers, cloud servers, laptops, phones, tablets, TVs, and other devices.

Thankfully, the recent disclosures have led to at least some change. The National Institute of Standards and Technology (NIST), the government agency in charge of one of the cryptographic standards the NSA has alleged to have secretly weakened, has reopened public comment on its standard and has even gone as far as to recommend people do not use it anymore.

And we’re beginning to see the international computer security community come to grips with this disturbing news.

But we must do more.

* We must rebuild the broad coalition that fought the first crypto wars, including investors, businesses, civil liberties groups, scientists and ordinary people.

* We must expose the vulnerabilities that have been secreted into our technologies. We must expose them and we must demand that they be fixed.

* We must ask standards bodies, companies and individual developers to pledge, publicly and unequivocally, to reject efforts to build backdoors or insert known vulnerabilities into their products—and create transparency so that they can't secretly cooperate with these efforts in the future.

* We must build our own tools, and support the tools that already exist that are independently verifiable as secure (most prominently, open source tools).

* We must support efforts in Congress to rein in the NSA and bring it back under the rule of law, and we must make sure those efforts ensure that our technologies are safe.

Juul is the cash-flush e-cigarette company whose billions (invested by Marlboro's parent company) have allowed it to create a massive market of addicted children, wiping out decades of progress in weaning children off of nicotine.

For two decades, the Phoenix police union has had a secret deal with the police department that required that the disciplinary records of cops would be "purged," so that no one, not even their supervisors, would be able to retrieve them.

Jerry Falwell, Sr founded the Moral Majority, brought evangelicals into the voting booth, elected Ronald Reagan, and changed the face of American politics forever; his son, Jerry Jr now commands the Falwell empire, including Liberty University, which now has $3b in assets.

The field of data analytics can get intimidating, even for business professionals who constantly rely on it. But at its heart, its purpose is to simplify. To take mounds of information and distill their insights into a single clear picture. Currently, the go-to software for painting that picture is Tableau. And if you want to […]

If you’re in the market for a stable, durable camera fully suited for first-person video, there’s a good chance that you’re the adventurous type. So why settle on a familiar name like GoPro? The DJI Osmo Action 4K HDR Camera checks off all the same boxes on the action cam checklist as the GoPro 4K […]

The market for web developers is wide open these days. If only we could say the same about the pathway to that career. If you’re not already an experienced coder, it can be difficult to get things rolling. A four-year college degree or technical school? Sure, if you’ve got the money. What about web tutorials? […]